Example:
firepower login: admin
Password:
Last login: Thu May 16 14:01:03 UTC 2019 on ttyS0
Successful login attempts for user 'admin' : 1
firepower#
Step 2
Access the threat defense CLI.
connect ftd
Example:
firepower# connect ftd
>
After logging in, for information on the commands available in the CLI, enter
help
or
?
. For usage information,
see
Command Reference for Secure Firewall Threat Defense
Step 3
To exit the threat defense CLI, enter the
exit
or
logout
command.
This command returns you to the FXOS CLI prompt. For information on the commands available in the FXOS
CLI, enter
?
.
Example:
> exit
firepower#
Troubleshoot Management Connectivity on a Data Interface
When you use a data interface for manager access instead of using the dedicated Management interface, you
must be careful about changing the interface and network settings for the threat defense in CDO so you do
not disrupt the connection. If you change the management interface type after you add the threat defense to
CDO (from data to Management, or from Management to data), if the interfaces and network settings are not
configured correctly, you can lose management connectivity.
This topic helps you troubleshoot the loss of management connectivity.
View management connection status
In CDO, check the management connection status on the
Devices
>
Device Management
>
Device
>
Management
>
Manager Access - Configuration Details
>
Connection Status
page.
At the threat defense CLI, enter the
sftunnel-status-brief
command to view the management connection
status. You can also use
sftunnel-status
to view more complete information.
See the following sample output for a connection that is down; there is no peer channel "connected to"
information, nor heartbeat information shown:
> sftunnel-status-brief
Cisco Firepower 1100 Getting Started Guide
149
Threat Defense Deployment with CDO
Troubleshoot Management Connectivity on a Data Interface